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Amendment To The Claims 

1 . (Currently amended) A system for securely transmitting Real Time 
Protocol voice packets during a communication session with a remote multimedia 
terminal adapter over an Internet protocol network, the system comprising: 

a local multimedia terminal adapter receiving the voice packets having a time 
stamp synchronization source operable to synchronize cryptographic operations between 
said local multimedia terminal adapter and said remote multimedia terminal adapter, the 
local multimedia terminal adapter comprising, 

a local key stream generator for generating a first key stream; 

a packet encryptor that encrypts the voice packets using at least a portion 
of the first key stream to form encrypted voice packets; 

the remote multimedia terminal adapter receiving the encrypted voice packets, the 
remote multimedia terminal adapters further comprising, 

a remote key stream generator for generating the first key stream in order 
to decrypt the encrypted voice packets; and 

a packet decryptor decrypting the encrypted voice packets using the first 
key stream, wherein both key stream generators generate a second key stream when a 
component used to transmit the Real Time Protocol voice packets changes during the 
communication session and the packet encrvotor and packet decrvntor use the second key 
stream ar e capabl e of g e nerating a second koy otroom to prevent r e use of any portion of 
th e first k e y str e am during tho communication aoaoion . 
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2. (Currently amended) The system of claim 1 wherein the second key 
stream is generated when the system switches wishes to owitoh from a first to a second 
coder/decoder for compression/decompression of the voice packets. 

3. (Original) The system of claim 1 wherein the second key stream is 
generated when a Message Authentication Code algorithm change occurs. 

4. (Original) The system of claim 1 further comprising a local gateway 
controller for forwarding the encrypted packets through the Internet protocol network. 

5. (Original) The system of claim 1 further comprising a remote gateway 
controller for receiving the encrypted packets from the Internet protocol network and for 
forwarding encrypted voice packets to the remote multimedia terminal adapter. 

6. (Currently amended) A system for communicating Real Time Protocol 
voice packets between a local and a remote location over an Internet protocol network, 
the system comprising: 

a stream cipher module for encrypting the voice packets; and 
a key stream generator for generating a first Real Time Protocol key stream, the 
stream cipher module employing the first key stream to encrypt the voice packets for 
forwarding to the remote location, the key stream generator producing a second Real 
Time Protocol key stream for encrypting the voice packets when the system switches 
wish e s to switch from a first communication parameter to a second communication 
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parameter, each of the first and second parameters being involved in the synchronization 
of the key stream, wherein the voice packets have a time stamp synchronization source 
operable to synchronize cryptographic operations between said local and remote 
locations. 

7. (Original) The system of claim 6 wherein the first communication 
parameter is a first coder/decoder that compresses/decompresses the voice packets, and 
the second communication parameter is a second coder/decoder that 
compresses/decompresses the voice packets. 

Claims 8-9 Cancelled. 

1 0. (Currently amended) The system of claim 6 [[9]] further comprising a 
new time stamp sequence generated when the second Real Time Protocol key stream is 
generated. 

1 1 . (Currently amended) The system of claim 6 wherein the second key 
stream is generated by re-executing the following key derivation function: 

F(S, "End-End RTP Key Change <N>") 

where N is a counter incremented whenever a new set of Real Time Protocol keys 
is re-derived for the same media stream session; 

F( ) is a one-way pseudo-random function used for the purpose of key derivation; 
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S is a shared secret [[--]] including a random value shared between the two 
endpoints and is known only to those two endpoints or ond poGcibly a trusted server {ergr 
gat e way controll e r) ; and 

"End-End RTP Key Change <N>" is a label that is used as a parameter to the key 
derivation function F( ), <N> stands for an ASCII representation of a decimal number, 
representing a counter. 

12. (Currently amended) The system of claim 6 wherein the second key 
stream is generated by re-executing the following key derivation function: 

F(S, SSRC, "End-End RTP Key Change <N> M ) where: 

S is a shared secret [[--]] including a random value shared between the two 

endpoints and is known only to those two endpoints or and poGoibly a trusted server (e^r 

gat e way controll e r) ; 

SSRC i$ the synchronization source session identifier; 

N is the counter of the number of key changes for the same SSRC value; and 

"End-End RTP Key Change <N>" is a label that is used as a parameter to the key 

derivation function F( ), <N> stands for an ASCII representation of a decimal number, 

representing a counter. 

13. (Currently amended) A method for securely transmitting Real Time 
Protocol voice packets from a local to a remote location via a communication network, 
the method comprising: 

generating a first Real Time Protocol key stream for encrypting the voice packets; 
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forwarding encrypted voice packets to the remote location; 

generating a second Real Time Protocol key stream for encrypting the voice 
packets in response to a request to change communication parameters for the same media 
stream during a communication session : and 

forwarding voice packets encrypted with the second Real Time Protocol key 
stream to the remote location, wherein the voice packets have a time stamp 
synchronization source operable to synchronize cryptographic operations between said 
local and remote locations. 

14, (Original) The method of claim 1 3 further comprising reinitializing a 
time stamp for synchronizing decryption of the voice packets. 

15, (Currently amended) The method of claim 13 wherein the step of 
generating a second Real Time Protocol key stream is by re-executing the following key 
derivation function: 

F(S, "End-End RTP Key Change <N>") 

where N is a counter incremented whenever a new set of Real Time Protocol keys 
is re-derived for the same media stream session; 

F( ) is a one-way pseudo-random function used for the purpose of key derivation; 

S is a shared secret [[--]] including a random value shared between the two 
endpoints and is known only to those two endpoints or and possibly a trusted server (erg? 
gateway controll e r) ; and 
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"End-End RTP Key Change <N>" is a label that is used as a parameter to the key 
derivation function F( ), <N> stands for an ASCII representation of a decimal number, 
representing a counter. 


1 6. (Currently amended) The method of claim 13 wherein the step of 
generating a second Real Time Protocol key stream is by re-executing the following key 
derivation function: 

F(S, SSRC, "End-End RTP Key Change <N>") where: 

S is a shared secret [[--]] including a random value shared between the two 
endpoints and is known only to those two endpoints or and possibly a trusted server (s-gr 
ga te way controller) ; 

SSRC is the synchronization source session identifier; 

N is the counter of the number of key changes; and 

"End-End RTP Key Change <N>" is a label that is used as a parameter to the key 
derivation function F( ), <N> stands for an ASCII representation of a decimal number, 
representing a counter. 

1 7, (Previously presented) In a communication system having a 
gateway receiving communication sessions from two or more multimedia terminal 
adapters, a method for securely exchanging voice packets between the multimedia 
terminal adapters and the gateway, the method comprising: 

generating a first Real Time Protocol key stream for encrypting the voice packets; 
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forwarding the voice packets encrypted with the first Real Time Protocol key 
stream to the gateway; 

generating a second Real Time Protocol key stream for encrypting the voice 
packets during a communication session in response to a collision detection wherein the 
multimedia terminal adapters have the same source identifier; and 

forwarding voice packets encrypted with the second Real Time Protocol key 
stream to the remote location, wherein the voice packets have a time stamp 
synchronization source operable to synchronize cryptographic operations between said 
local multimedia terminal adapter and remote multimedia terminal adapter, 

1 8 . (Currently amended) The method of claim 1 7 wherein the step of 
generating a second Real Time Protocol key stream is by re-executing the following key 
derivation function: 

F(S, SSRC, "End-End RTP Key Change <N>") where: 

S is a shared secret [[--]] including a random value shared between the two 
endpoints and is known only to those two endpoints or and possibly a trusted server (e^ 
gateway oontrollor) ; 

SSRC is the synchronization source session identifier; 

N is the counter of the number of key changes; and 

"End-End RTP Key Change <N> M is a label that is used as a parameter to the key 
derivation function F( ), <N> stands for an ASCII representation of a decimal number, 
representing a counter. 
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1 9. (Currently amended) A system for securely transmitting voice packets 
during a communication session from a local location to a remote location over a 
communication network, the system comprising: 

a means for generating a first key stream at the local location; 

a means for encrypting the voice packets using at least a portion of the first key 
stream to form encrypted voice packets; 

a means for forwarding the encrypted voice packets from the local location to the 
remote location; 

a means for generating the first key stream at the remote location in order to 
decrypt the encrypted voice packets; and 

a means for decrypting the encrypted voice packets using the first key stream, 
wherein both means for generating arc capable of generating a second key stream when a 
component used to transmit the Real Time Protocol voice packets changes during the 
communicati o n session to pr e vent fouoo of any portion nf tho firrct lrpy ^tim during tho 
communication , wherein the voice packets have a time stamp synchronization source 
operable to synchronize cryptographic operations between said local and remote 
locations. 

20. (Currently amended) The system of claim 1 9 wherein the second key 
stream is generated when the system switches wish e s to switch from a first to a second 
coder/decoder for compression/decompression of the voice packets. 
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2 1 . (Currently amended) The system of claim 1 9 wherein the second key 
stream is generated by re-executing the following key derivation function: 

F(S, "End-End RTP Key Change <N>") 

where N is a counter incremented whenever a new set of Real Time Protocol keys 
is re-derived for the same media stream session; 

F( ) is a one-way pseudo-random function used for the purpose of key derivation; 

S is a shared secret [[--]] including a random value shared between the two 
endpoints and is known only to those two endpoints or and possibly a trusted server (e^r 
gat e way controller) ; and 

"End-End RTP Key Change <N> n is a label that is used as a parameter to the key 
derivation function F( ), <N> stands for an ASCII representation of a decimal number, 
representing a counter. 

22. (Currently amended) The system of claim 19 wherein the second key 
stream is generated by re-executing the following key derivation function: 

F(S, SSRC, "End-End RTP Key Change <N>") where: 

S is a shared secret [[--]] including a random value shared between the two 
endpoints and is known only to those two endpoints or and possibly a trusted server (ergr 
gat e way controll e r) ; 

SSRC is the synchronization source session identifier; 

N is the counter of the number of key changes; and 
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"End-End RTP Key Change <N>" is a label that is used as a parameter to the key 
derivation function F( ), <N> stands for an ASCII representation of a decimal number, 
representing a counter. 


23. (Original) The system of claim 19 further comprising a means for 
synchronizing the voice packets. 
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